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AMENDMENTS TO THE CLAIMS 

This Listing of Claims will replace all prior versions and listings of Claims in the 
subject Patent Application: 
Listing of Claims : 

Claim 1 (Currently amended) A method of key-management in Distributed Sensor Networks, 
comprising the steps of: 

prior to deployment of a plurality of sensor nodes of the Distributed Sensor Network, 
storing, in each sensor node of the Distributed Sensor Network, a respective key ring form e d of 
including a plurality of individually selectable keys, said keys being randomly chosen s e l e cted 
keys from a common pool a r e sp e ctiv e pair of said k e y rings sharing, with a predet e rmined 
probability, at least on e k e y said key rings of at least a pair of said sensor nodes having a 
common key ; 

upon deployment of said plurality of the sensor nodes of the Distributed Sensor Network, 
discov e ring by at least one sensor node of said plurality of th e s e nsor nod e s for being actuated to 
discover at least another sensor node sharing said at least one common key with said at l e ast on e 
s e nsor nod e to establish a secure communication link between said one and another of said 
sensor nodes; and 

using said at least one common key for secure communication between said at least one 
and another sensor nodes over said secure communication link established therebetween. 

Claim 2(Original) The method of claim 1 , further comprising the steps of: generating a key 
space, randomly selecting a pool of keys from said key space, assigning a specific key identifier 
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for each key from said pool of keys, and for each said sensor node of the distributed sensor 
network, randomly selecting a distinct set of the keys to form said respective key ring. 

Claim 3(Original) The method of claim 2, further comprising the steps of: assigning to each said 
sensor node a specific sensor identifier. 

Claim 4(Original) The method of claim 2, further comprising the steps of: loading to said at least 
one sensor node a specific key identifier of each key on said key ring of said at least one sensor 
node, and broadcasting said key identifiers associated with said at least one sensor node to 
discover said at least another sensor node. 

Claim 5 (Original) The method of claim 3, wherein said Distributed Sensor Network further 
includes a plurality of controller nodes associated with said sensor nodes in a predetermined 
order, further comprising the steps of: saving said key identifiers of the keys in said respective 
key ring of each said sensor node along with said sensor identifier of said each sensor node on a 
trusted controller node from said plurality of controller nodes. 

Claim 6(Original) The method of claim 4, wherein said key identifiers are broadcast in a clear 
text. 

Claim 7(Original) The method of claim 4, wherein said key identifiers are broadcast in a hidden 
pattern. 
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Claim 8(Original) The method of claim 5, further comprising the steps of: computing a sensor- 
controller key shared by said each sensor node with said trusted controller, and loading said 
trusted controller and said each sensor node with said sensor-controller key. 

Claim 9(Original) The method of claim 5, further comprising the steps of: upon compromising of 
at least one sensor node, revoking said at least one compromised sensor node by broadcasting 
from said trusted controller a revocation message containing a signed list of the key identifiers of 
the key ring of said compromised sensor node to be revoked. 

Claim lO(Original) The method of claim 9, further comprising the steps of: generating a * 
signature key for said list and unicasting the same to each said sensor node. 

Claim 1 1 (Original) The method of claim 10, further comprising the steps of: upon obtaining of 
said signature key by an uncompromised sensor node, verifying said signature key of said signed 
list of the key identifiers of the key ring of said compromised sensor node, locating said key 
identifiers in said key ring of said uncompromised sensor node, and removing keys 
corresponding to the key identifiers of the compromised keys from said key ring of said 
uncompromised sensor node. 

Claim 12(Original) The method of claim 9, further comprising the steps of: reconfiguring the 
communication links of the sensor nodes affected by revocation of said compromised sensor 
node. 



Page 4 of 1 1 



MR2833-34 

Application Serial No. 1 0/666,207 

Responsive to Office Action dated 29 December 2006 

Claim 13(Original) The method of claim 1, further comprising the steps of: upon expiration of at 
least one key shared by said at least one and another sensor node, removal of said expired at least 
one key from said key rings of said at least one and another sensor nodes, and searching for 
another key common for said at least one and another sensor nodes to establish a new 
communication link therebetween. 

Claim 14(Original) The method of claim 2, further comprising the steps of: generating a 
connectivity random graph for said Distributed Sensor Network, and computing the number of 
the sensor nodes, the number of keys in said pool of keys and the size of each said key ring, 
sufficient to provide for a connected Distributed Sensor Network. 

Claim 15(Original) The method of claim 1, further comprising the step of: assigning a path-key 
to a selected pair of sensor nodes connected by at least two communication links. 

Claim 16 (Currently amended) A Distributed Sensor Network system, comprising: 

at least two sensor nodes, each said sensor node being pre-loaded prior to deployment 
thereof with a respective key ring form e d of including randomly s e lect e d a plurality of 
individually selectable keys randomly chosen from a common pool the key rings of at least a 
pair of said sensor nodes having a common key said r e sp e ctive k e y rings of said at least two 
sensor nodes sharing, with a pr e d e t e rmined probability, at l e ast one key, ;_and 

means associated with at least one of said at l e ast two sensor nodes for searching for 
another of said sensor node with a key ring including a common key at least two sensor nod e s 
sharing said at least ono key with said at l e ast on e s e nsor nod e to establish a secure 
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communication link therebetween. 

Claim 17(Original) The Distributed Sensor Network system of claim 16, further comprising: 
means for generating a key space, means for randomly selecting a pool of keys from said key 
space, means for assigning a specific key identifier for each key of said pool of keys, and means 
for randomly selecting at least two distinct sets of keys from said pool of keys, thus forming said 
respective key rings for said sensor nodes. 

Claim 18(Original) The Distributed Sensor Network system of claim 17, wherein each said 
sensor node is further pre-loaded prior to deployment thereof with said key identifiers for each 
key of said respective key ring pre-loaded on each sensor node. 

Claim 19(Original) The Distributed Sensor Network system of claim 17, further comprising: at 
least one controller node associated with said one sensor node, said at least one controller node 
having said key identifiers of said key ring of said one sensor node and a specific sensor 
identifier of said at least one sensor node saved therein, and means for broadcasting said key 
identifiers of said respective key ring. 

Claim 20(Original) The Distributed Sensor Network system of claim 19, further comprising 
means for generating a revocation message and broadcasting the same for revocation of a 
compromised at least one of said two sensor nodes, said revocation message containing a signed 
list of said key identifiers of said key ring of said compromised sensor node. 
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Claim 21 (Original) The Distributed Sensor Network system of claim 20, further comprising 
means for reconfiguring communication links of said at least another sensor node affected by 
revocation of said compromised sensor node. 

Claim 22(Currently amended) The Distributed Sensor Network system of claim 4-16, further 
comprising means for assigning a path-key to a selected pair of sensor nodes connected by at 
least two communication links. 
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